@alienplatform/core 1.0.1 → 1.3.4

package/src/generated/schemas/stackState.json

@@ -1 +1 @@
-{"type":"object","description":"Represents the collective state of all resources in a stack, including platform and pending actions.","required":["platform","resources","resourcePrefix"],"properties":{"platform":{"description":"The target platform for this stack state.","type":"string","enum":["aws","gcp","azure","kubernetes","local","test"],"x-readme-ref-name":"Platform"},"resourcePrefix":{"type":"string","description":"A prefix used for resource naming to ensure uniqueness across deployments."},"resources":{"type":"object","description":"The state of individual resources, keyed by resource ID.","additionalProperties":{"type":"object","description":"Represents the state of a single resource within the stack for a specific platform.","required":["type","status","config"],"properties":{"_internal":{"description":"The platform-specific resource controller that manages this resource's lifecycle.\nThis is None when the resource status is Pending.\nStored as JSON to make the struct serializable and movable to alien-core."},"config":{"description":"The current resource configuration.","type":"object","required":["type","id"],"properties":{"id":{"type":"string","description":"The unique identifier for this specific resource instance. Must contain only alphanumeric characters, hyphens, and underscores ([A-Za-z0-9-_]). Maximum 64 characters."},"type":{"type":"string","description":"Resource type identifier that determines the specific kind of resource. This field is used for polymorphic deserialization and resource-specific behavior.","examples":["function","storage","queue","redis","postgres"],"x-readme-ref-name":"ResourceType"}},"additionalProperties":true,"x-readme-ref-name":"BaseResource"},"dependencies":{"type":"array","items":{"type":"object","description":"New ResourceRef that works with any resource type.\nThis can eventually replace the enum-based ResourceRef for full extensibility.","required":["type","id"],"properties":{"id":{"type":"string"},"type":{"type":"string","description":"Resource type identifier that determines the specific kind of resource. This field is used for polymorphic deserialization and resource-specific behavior.","examples":["function","storage","queue","redis","postgres"],"x-readme-ref-name":"ResourceType"}},"x-readme-ref-name":"ResourceRef"},"description":"Complete list of dependencies for this resource, including infrastructure dependencies.\nThis preserves the full dependency information from the stack definition."},"error":{"oneOf":[{"type":"null"},{"description":"Stores the last error encountered during a failed step transition.","type":"object","required":["code","message","retryable","internal"],"properties":{"code":{"type":"string","description":"A unique identifier for the type of error.\n\nThis should be a short, machine-readable string that can be used\nby clients to programmatically handle different error types.\nExamples: \"NOT_FOUND\", \"VALIDATION_ERROR\", \"TIMEOUT\"","example":"NOT_FOUND","maxLength":128},"context":{"description":"Additional diagnostic information about the error context.\n\nThis optional field can contain structured data providing more details\nabout the error, such as validation errors, request parameters that\ncaused the issue, or other relevant context information."},"httpStatusCode":{"type":["integer","null"],"format":"int32","description":"HTTP status code for this error.\n\nUsed when converting the error to an HTTP response. If None, falls back to\nthe error type's default status code or 500.","maximum":599,"minimum":100},"internal":{"type":"boolean","description":"Indicates if this is an internal error that should not be exposed to users.\n\nWhen `true`, this error contains sensitive information or implementation\ndetails that should not be shown to end-users. Such errors should be\nlogged for debugging but replaced with generic error messages in responses."},"message":{"type":"string","description":"Human-readable error message.\n\nThis message should be clear and actionable for developers or end-users,\nproviding context about what went wrong and potentially how to fix it.","example":"Item not found.","maxLength":16384},"retryable":{"type":"boolean","description":"Indicates whether the operation that caused the error should be retried.\n\nWhen `true`, the error is transient and the operation might succeed\nif attempted again. When `false`, retrying the same operation is\nunlikely to succeed without changes.","default":false},"source":{"description":"The underlying error that caused this error, creating an error chain.\n\nThis allows for proper error propagation and debugging by maintaining\nthe full context of how an error occurred through multiple layers\nof an application."}},"x-readme-ref-name":"AlienError"}]},"isExternallyProvisioned":{"type":"boolean","description":"True if the resource was provisioned by an external system (e.g., CloudFormation).\nDefaults to false, indicating dynamic provisioning by the executor."},"lastFailedState":{"description":"Stores the controller state that failed, used for manual retry operations.\nThis allows resuming from the exact point where the failure occurred.\nStored as JSON to make the struct serializable and movable to alien-core."},"lifecycle":{"oneOf":[{"type":"null"},{"description":"The lifecycle of the resource (Frozen, Live, LiveOnSetup).\nDefaults to Live if not specified.","type":"string","enum":["frozen","live","live-on-setup"],"x-readme-ref-name":"ResourceLifecycle"}]},"outputs":{"oneOf":[{"type":"null"},{"description":"Outputs generated by the resource (e.g., ARN, URL, Bucket Name).","type":"object","required":["type"],"properties":{"type":{"type":"string","description":"Resource type identifier that determines the specific kind of resource. This field is used for polymorphic deserialization and resource-specific behavior.","examples":["function","storage","queue","redis","postgres"],"x-readme-ref-name":"ResourceType"}},"additionalProperties":true,"x-readme-ref-name":"BaseResourceOutputs"}]},"previousConfig":{"oneOf":[{"type":"null"},{"description":"The previous resource configuration during updates.\nThis is set when an update is initiated and cleared when the update completes or fails.","type":"object","required":["type","id"],"properties":{"id":{"type":"string","description":"The unique identifier for this specific resource instance. Must contain only alphanumeric characters, hyphens, and underscores ([A-Za-z0-9-_]). Maximum 64 characters."},"type":{"type":"string","description":"Resource type identifier that determines the specific kind of resource. This field is used for polymorphic deserialization and resource-specific behavior.","examples":["function","storage","queue","redis","postgres"],"x-readme-ref-name":"ResourceType"}},"additionalProperties":true,"x-readme-ref-name":"BaseResource"}]},"remoteBindingParams":{"description":"Binding parameters for remote access.\nOnly populated when the resource has `remote_access: true` in its ResourceEntry.\nThis is the JSON serialization of the binding configuration (e.g., StorageBinding, VaultBinding).\nPopulated by controllers during provisioning using get_binding_params()."},"retryAttempt":{"type":"integer","format":"int32","description":"Tracks consecutive retry attempts for the current state transition.","minimum":0},"status":{"description":"High-level status derived from the internal state.","type":"string","enum":["pending","provisioning","provision-failed","running","updating","update-failed","deleting","delete-failed","deleted","refresh-failed"],"x-readme-ref-name":"ResourceStatus"},"type":{"type":"string","description":"The high-level type of the resource (e.g., Function::RESOURCE_TYPE, Storage::RESOURCE_TYPE)."}},"x-readme-ref-name":"StackResourceState"},"propertyNames":{"type":"string"}}},"x-readme-ref-name":"StackState"}
+{"type":"object","description":"Represents the collective state of all resources in a stack, including platform and pending actions.","required":["platform","resources","resourcePrefix"],"properties":{"platform":{"description":"The target platform for this stack state.","type":"string","enum":["aws","gcp","azure","kubernetes","local","test"],"x-readme-ref-name":"Platform"},"resourcePrefix":{"type":"string","description":"A prefix used for resource naming to ensure uniqueness across deployments."},"resources":{"type":"object","description":"The state of individual resources, keyed by resource ID.","additionalProperties":{"type":"object","description":"Represents the state of a single resource within the stack for a specific platform.","required":["type","status","config"],"properties":{"_internal":{"description":"The platform-specific resource controller that manages this resource's lifecycle.\nThis is None when the resource status is Pending.\nStored as JSON to make the struct serializable and movable to alien-core."},"config":{"description":"The current resource configuration.","type":"object","required":["type","id"],"properties":{"id":{"type":"string","description":"The unique identifier for this specific resource instance. Must contain only alphanumeric characters, hyphens, and underscores ([A-Za-z0-9-_]). Maximum 64 characters."},"type":{"type":"string","description":"Resource type identifier that determines the specific kind of resource. This field is used for polymorphic deserialization and resource-specific behavior.","examples":["function","storage","queue","redis","postgres"],"x-readme-ref-name":"ResourceType"}},"additionalProperties":true,"x-readme-ref-name":"BaseResource"},"dependencies":{"type":"array","items":{"type":"object","description":"New ResourceRef that works with any resource type.\nThis can eventually replace the enum-based ResourceRef for full extensibility.","required":["type","id"],"properties":{"id":{"type":"string"},"type":{"type":"string","description":"Resource type identifier that determines the specific kind of resource. This field is used for polymorphic deserialization and resource-specific behavior.","examples":["function","storage","queue","redis","postgres"],"x-readme-ref-name":"ResourceType"}},"x-readme-ref-name":"ResourceRef"},"description":"Complete list of dependencies for this resource, including infrastructure dependencies.\nThis preserves the full dependency information from the stack definition."},"error":{"oneOf":[{"type":"null"},{"description":"Stores the last error encountered during a failed step transition.","type":"object","required":["code","message","retryable","internal"],"properties":{"code":{"type":"string","description":"A unique identifier for the type of error.\n\nThis should be a short, machine-readable string that can be used\nby clients to programmatically handle different error types.\nExamples: \"NOT_FOUND\", \"VALIDATION_ERROR\", \"TIMEOUT\"","example":"NOT_FOUND","maxLength":128},"context":{"description":"Additional diagnostic information about the error context.\n\nThis optional field can contain structured data providing more details\nabout the error, such as validation errors, request parameters that\ncaused the issue, or other relevant context information."},"hint":{"type":["string","null"],"description":"Optional human-facing remediation hint."},"httpStatusCode":{"type":["integer","null"],"format":"int32","description":"HTTP status code for this error.\n\nUsed when converting the error to an HTTP response. If None, falls back to\nthe error type's default status code or 500.","maximum":599,"minimum":100},"internal":{"type":"boolean","description":"Indicates if this is an internal error that should not be exposed to users.\n\nWhen `true`, this error contains sensitive information or implementation\ndetails that should not be shown to end-users. Such errors should be\nlogged for debugging but replaced with generic error messages in responses."},"message":{"type":"string","description":"Human-readable error message.\n\nThis message should be clear and actionable for developers or end-users,\nproviding context about what went wrong and potentially how to fix it.","example":"Item not found.","maxLength":16384},"retryable":{"type":"boolean","description":"Indicates whether the operation that caused the error should be retried.\n\nWhen `true`, the error is transient and the operation might succeed\nif attempted again. When `false`, retrying the same operation is\nunlikely to succeed without changes.","default":false},"source":{"description":"The underlying error that caused this error, creating an error chain.\n\nThis allows for proper error propagation and debugging by maintaining\nthe full context of how an error occurred through multiple layers\nof an application."}},"x-readme-ref-name":"AlienError"}]},"isExternallyProvisioned":{"type":"boolean","description":"True if the resource was provisioned by an external system (e.g., CloudFormation).\nDefaults to false, indicating dynamic provisioning by the executor."},"lastFailedState":{"description":"Stores the controller state that failed, used for manual retry operations.\nThis allows resuming from the exact point where the failure occurred.\nStored as JSON to make the struct serializable and movable to alien-core."},"lifecycle":{"oneOf":[{"type":"null"},{"description":"The lifecycle of the resource (Frozen or Live).\nDefaults to Live if not specified.","type":"string","enum":["frozen","live"],"x-readme-ref-name":"ResourceLifecycle"}]},"outputs":{"oneOf":[{"type":"null"},{"description":"Outputs generated by the resource (e.g., ARN, URL, Bucket Name).","type":"object","required":["type"],"properties":{"type":{"type":"string","description":"Resource type identifier that determines the specific kind of resource. This field is used for polymorphic deserialization and resource-specific behavior.","examples":["function","storage","queue","redis","postgres"],"x-readme-ref-name":"ResourceType"}},"additionalProperties":true,"x-readme-ref-name":"BaseResourceOutputs"}]},"previousConfig":{"oneOf":[{"type":"null"},{"description":"The previous resource configuration during updates.\nThis is set when an update is initiated and cleared when the update completes or fails.","type":"object","required":["type","id"],"properties":{"id":{"type":"string","description":"The unique identifier for this specific resource instance. Must contain only alphanumeric characters, hyphens, and underscores ([A-Za-z0-9-_]). Maximum 64 characters."},"type":{"type":"string","description":"Resource type identifier that determines the specific kind of resource. This field is used for polymorphic deserialization and resource-specific behavior.","examples":["function","storage","queue","redis","postgres"],"x-readme-ref-name":"ResourceType"}},"additionalProperties":true,"x-readme-ref-name":"BaseResource"}]},"remoteBindingParams":{"description":"Binding parameters for remote access.\nOnly populated when the resource has `remote_access: true` in its ResourceEntry.\nThis is the JSON serialization of the binding configuration (e.g., StorageBinding, VaultBinding).\nPopulated by controllers during provisioning using get_binding_params()."},"retryAttempt":{"type":"integer","format":"int32","description":"Tracks consecutive retry attempts for the current state transition.","minimum":0},"status":{"description":"High-level status derived from the internal state.","type":"string","enum":["pending","provisioning","provision-failed","running","updating","update-failed","deleting","delete-failed","deleted","refresh-failed"],"x-readme-ref-name":"ResourceStatus"},"type":{"type":"string","description":"The high-level type of the resource (e.g., Function::RESOURCE_TYPE, Storage::RESOURCE_TYPE)."}},"x-readme-ref-name":"StackResourceState"},"propertyNames":{"type":"string"}}},"x-readme-ref-name":"StackState"}

package/src/generated/schemas/updatesMode.json

@@ -1 +1 @@
-{"type":"string","description":"How updates are delivered to the agent.","enum":["auto","approval-required"],"x-readme-ref-name":"UpdatesMode"}
+{"type":"string","description":"How updates are delivered to the deployment.","enum":["auto","approval-required"],"x-readme-ref-name":"UpdatesMode"}

package/src/generated/zod/agent-status-schema.ts

@@ -3,25 +3,26 @@
 * Do not edit manually.
 */
 
+import * as z from "zod";
 import { AlienErrorSchema } from "./alien-error-schema.js";
 import { DeploymentStatusSchema } from "./deployment-status-schema.js";
 import { DevResourceInfoSchema } from "./dev-resource-info-schema.js";
-import { z } from "zod/v4";
 
 /**
  * @description Status of a single agent in the dev server
  */
 export const AgentStatusSchema = z.object({
-    "createdAt": z.string().describe("ISO 8601 timestamp when agent was created"),
-get error(){
+    "commandsUrl": z.string().describe("Commands endpoint URL for the deployment").nullish(),
+"createdAt": z.string().describe("ISO 8601 timestamp when agent was created"),
+get "error"(){
                 return z.union([AlienErrorSchema, z.null()]).optional()
               },
 "id": z.string().describe("Agent ID (e.g., ag_xyz123)"),
 "name": z.string().describe("Agent name (from --agent-name flag)"),
 "resources": z.object({
     
-    }).catchall(DevResourceInfoSchema.describe("Information about a deployed resource")).describe("Resources deployed by this agent (keyed by resource name)"),
-get status(){
+    }).catchall(z.lazy(() => DevResourceInfoSchema).describe("Information about a deployed resource")).describe("Resources deployed by this agent (keyed by resource name)"),
+get "status"(){
                 return DeploymentStatusSchema.describe("Deployment status in the deployment lifecycle")
               }
     }).describe("Status of a single agent in the dev server")

package/src/generated/zod/alien-error-schema.ts

@@ -3,19 +3,20 @@
 * Do not edit manually.
 */
 
-import { z } from "zod/v4";
+import * as z from "zod";
 
 /**
  * @description Canonical error container that provides a structured way to represent errors\nwith rich metadata including error codes, human-readable messages, context,\nand chaining capabilities for error propagation.\n\nThis struct is designed to be both machine-readable and user-friendly,\nsupporting serialization for API responses and detailed error reporting\nin distributed systems.
  */
 export const AlienErrorSchema = z.object({
     "code": z.string().max(128).describe("A unique identifier for the type of error.\n\nThis should be a short, machine-readable string that can be used\nby clients to programmatically handle different error types.\nExamples: \"NOT_FOUND\", \"VALIDATION_ERROR\", \"TIMEOUT\""),
-"context": z.any().optional(),
-"httpStatusCode": z.int().min(100).max(599).describe("HTTP status code for this error.\n\nUsed when converting the error to an HTTP response. If None, falls back to\nthe error type's default status code or 500.").optional().nullable(),
+"context": z.optional(z.any().describe("Additional diagnostic information about the error context.\n\nThis optional field can contain structured data providing more details\nabout the error, such as validation errors, request parameters that\ncaused the issue, or other relevant context information.")),
+"hint": z.string().describe("Optional human-facing remediation hint.").nullish(),
+"httpStatusCode": z.int().min(100).max(599).describe("HTTP status code for this error.\n\nUsed when converting the error to an HTTP response. If None, falls back to\nthe error type's default status code or 500.").nullish(),
 "internal": z.boolean().describe("Indicates if this is an internal error that should not be exposed to users.\n\nWhen `true`, this error contains sensitive information or implementation\ndetails that should not be shown to end-users. Such errors should be\nlogged for debugging but replaced with generic error messages in responses."),
 "message": z.string().max(16384).describe("Human-readable error message.\n\nThis message should be clear and actionable for developers or end-users,\nproviding context about what went wrong and potentially how to fix it."),
 "retryable": z.boolean().default(false).describe("Indicates whether the operation that caused the error should be retried.\n\nWhen `true`, the error is transient and the operation might succeed\nif attempted again. When `false`, retrying the same operation is\nunlikely to succeed without changes."),
-"source": z.any().optional()
+"source": z.optional(z.any().describe("The underlying error that caused this error, creating an error chain.\n\nThis allows for proper error propagation and debugging by maintaining\nthe full context of how an error occurred through multiple layers\nof an application."))
     }).describe("Canonical error container that provides a structured way to represent errors\nwith rich metadata including error codes, human-readable messages, context,\nand chaining capabilities for error propagation.\n\nThis struct is designed to be both machine-readable and user-friendly,\nsupporting serialization for API responses and detailed error reporting\nin distributed systems.")
 
 export type AlienError = z.infer<typeof AlienErrorSchema>

package/src/generated/zod/alien-event-schema.ts

@@ -3,9 +3,9 @@
 * Do not edit manually.
 */
 
+import * as z from "zod";
 import { PushProgressSchema } from "./push-progress-schema.js";
 import { StackStateSchema } from "./stack-state-schema.js";
-import { z } from "zod/v4";
 
 /**
  * @description Represents all possible events in the Alien system
@@ -26,7 +26,7 @@ export const AlienEventSchema = z.union([z.object({
 "type": z.enum(["DownloadingAlienRuntime"]),
 "url": z.string().describe("URL being downloaded from")
     }), z.object({
-    "relatedResources": z.array(z.string()).describe("All resource names sharing this build (for deduped container groups)").optional(),
+    "relatedResources": z.optional(z.array(z.string()).describe("All resource names sharing this build (for deduped container groups)")),
 "resourceName": z.string().describe("Name of the resource being built"),
 "resourceType": z.string().describe("Type of the resource: \"function\", \"container\", \"worker\""),
 "type": z.enum(["BuildingResource"])
@@ -35,7 +35,7 @@ export const AlienEventSchema = z.union([z.object({
 "type": z.enum(["BuildingImage"])
     }), z.object({
     "image": z.string().describe("Name of the image being pushed"),
-get progress(){
+get "progress"(){
                 return z.union([PushProgressSchema, z.null()]).optional()
               },
 "type": z.enum(["PushingImage"])
@@ -52,13 +52,13 @@ get progress(){
 "type": z.enum(["CreatingRelease"])
     }), z.object({
     "language": z.string().describe("Language being compiled (rust, typescript, etc.)"),
-"progress": z.string().describe("Current progress/status line from the build output").optional().nullable(),
+"progress": z.string().describe("Current progress/status line from the build output").nullish(),
 "type": z.enum(["CompilingCode"])
     }), z.object({
-    get nextState(){
+    get "nextState"(){
                 return StackStateSchema.describe("Represents the collective state of all resources in a stack, including platform and pending actions.")
               },
-"suggestedDelayMs": z.int().min(0).describe("An suggested duration to wait before executing the next step.").optional().nullable(),
+"suggestedDelayMs": z.int().min(0).describe("An suggested duration to wait before executing the next step.").nullish(),
 "type": z.enum(["StackStep"])
     }), z.object({
     "type": z.enum(["GeneratingCloudFormationTemplate"])

package/src/generated/zod/artifact-registry-outputs-schema.ts

@@ -3,14 +3,14 @@
 * Do not edit manually.
 */
 
-import { z } from "zod/v4";
+import * as z from "zod";
 
 /**
  * @description Outputs generated by a successfully provisioned ArtifactRegistry.
  */
 export const ArtifactRegistryOutputsSchema = z.object({
-    "pullRole": z.string().describe("Role/principal identifier for pull-only access.\n- AWS: IAM role ARN (e.g., \"arn:aws:iam::123456789012:role/my-stack-my-registry-pull\")\n- GCP: Service account email (e.g., \"my-stack-my-registry-pull@my-project.iam.gserviceaccount.com\")\n- Azure: Managed identity resource ID (e.g., \"/subscriptions/.../resourceGroups/.../providers/Microsoft.ManagedIdentity/userAssignedIdentities/my-registry-pull\")").optional().nullable(),
-"pushRole": z.string().describe("Role/principal identifier for push and pull access.\n- AWS: IAM role ARN (e.g., \"arn:aws:iam::123456789012:role/my-stack-my-registry-push\")\n- GCP: Service account email (e.g., \"my-stack-my-registry-push@my-project.iam.gserviceaccount.com\")\n- Azure: Managed identity resource ID (e.g., \"/subscriptions/.../resourceGroups/.../providers/Microsoft.ManagedIdentity/userAssignedIdentities/my-registry-push\")").optional().nullable(),
+    "pullRole": z.string().describe("Role/principal identifier for pull-only access.\n- AWS: IAM role ARN (e.g., \"arn:aws:iam::123456789012:role/my-stack-my-registry-pull\")\n- GCP: Service account email (e.g., \"my-stack-my-registry-pull@my-project.iam.gserviceaccount.com\")\n- Azure: Managed identity resource ID (e.g., \"/subscriptions/.../resourceGroups/.../providers/Microsoft.ManagedIdentity/userAssignedIdentities/my-registry-pull\")").nullish(),
+"pushRole": z.string().describe("Role/principal identifier for push and pull access.\n- AWS: IAM role ARN (e.g., \"arn:aws:iam::123456789012:role/my-stack-my-registry-push\")\n- GCP: Service account email (e.g., \"my-stack-my-registry-push@my-project.iam.gserviceaccount.com\")\n- Azure: Managed identity resource ID (e.g., \"/subscriptions/.../resourceGroups/.../providers/Microsoft.ManagedIdentity/userAssignedIdentities/my-registry-push\")").nullish(),
 "registryEndpoint": z.string().describe("The registry endpoint for docker operations.\n- AWS: ECR registry URL (e.g., \"123456789012.dkr.ecr.us-west-2.amazonaws.com\")\n- GCP: Artifact Registry URL (e.g., \"us-central1-docker.pkg.dev/my-project\")\n- Azure: Container registry login server (e.g., \"myregistry.azurecr.io\")"),
 "registryId": z.string().describe("The platform-specific registry identifier.\n- AWS: Account and region (e.g., \"123456789012:us-west-2\")\n- GCP: Full registry name (e.g., \"projects/my-project/locations/us-central1\")\n- Azure: Registry resource ID (e.g., \"/subscriptions/.../resourceGroups/.../providers/Microsoft.ContainerRegistry/registries/myregistry\")")
     }).describe("Outputs generated by a successfully provisioned ArtifactRegistry.")

package/src/generated/zod/artifact-registry-schema.ts

@@ -3,13 +3,14 @@
 * Do not edit manually.
 */
 
-import { z } from "zod/v4";
+import * as z from "zod";
 
 /**
  * @description Represents an artifact registry for storing container images and other build artifacts.\nThis is a high-level wrapper resource that provides a cloud-agnostic interface over\nAWS ECR, GCP Artifact Registry, and Azure Container Registry.\n\n# Platform Mapping\n- **AWS**: Implicitly exists as the AWS account and region\n- **GCP**: Explicitly configured per project and location (Artifact Registry API enabled)\n- **Azure**: Explicitly provisioned Azure Container Registry instance\n\nThe actual repository management and permissions are handled through the bindings API.
  */
 export const ArtifactRegistrySchema = z.object({
-    "id": z.string().describe("Identifier for the artifact registry. Must contain only alphanumeric characters, hyphens, and underscores ([A-Za-z0-9-_]).\nMaximum 64 characters.")
+    "id": z.string().describe("Identifier for the artifact registry. Must contain only alphanumeric characters, hyphens, and underscores ([A-Za-z0-9-_]).\nMaximum 64 characters."),
+"replicationRegions": z.optional(z.array(z.string()).describe("AWS-only: regions to replicate container images to.\nECR private image replication ensures images pushed in the registry's home region\nare automatically available in these additional regions (required when Lambda or\nother compute runs in a different region from the registry)."))
     }).describe("Represents an artifact registry for storing container images and other build artifacts.\nThis is a high-level wrapper resource that provides a cloud-agnostic interface over\nAWS ECR, GCP Artifact Registry, and Azure Container Registry.\n\n# Platform Mapping\n- **AWS**: Implicitly exists as the AWS account and region\n- **GCP**: Explicitly configured per project and location (Artifact Registry API enabled)\n- **Azure**: Explicitly provisioned Azure Container Registry instance\n\nThe actual repository management and permissions are handled through the bindings API.")
 
 export type ArtifactRegistry = z.infer<typeof ArtifactRegistrySchema>

package/src/generated/zod/aws-custom-certificate-config-schema.ts

@@ -3,7 +3,7 @@
 * Do not edit manually.
 */
 
-import { z } from "zod/v4";
+import * as z from "zod";
 
 export const AwsCustomCertificateConfigSchema = z.object({
     "certificateArn": z.string()

package/src/generated/zod/aws-management-config-schema.ts

@@ -3,7 +3,7 @@
 * Do not edit manually.
 */
 
-import { z } from "zod/v4";
+import * as z from "zod";
 
 /**
  * @description AWS management configuration extracted from stack settings

package/src/generated/zod/aws-platform-permission-schema.ts

@@ -3,18 +3,18 @@
 * Do not edit manually.
 */
 
+import * as z from "zod";
 import { BindingConfigurationAwsBindingSpecSchema } from "./binding-configuration-aws-binding-spec-schema.js";
 import { PermissionGrantSchema } from "./permission-grant-schema.js";
-import { z } from "zod/v4";
 
 /**
  * @description AWS-specific platform permission configuration
  */
 export const AwsPlatformPermissionSchema = z.object({
-    get binding(){
+    get "binding"(){
                 return BindingConfigurationAwsBindingSpecSchema.describe("Generic binding configuration for permissions")
               },
-get grant(){
+get "grant"(){
                 return PermissionGrantSchema.describe("Grant permissions for a specific cloud platform")
               }
     }).describe("AWS-specific platform permission configuration")

package/src/generated/zod/azure-custom-certificate-config-schema.ts

@@ -3,7 +3,7 @@
 * Do not edit manually.
 */
 
-import { z } from "zod/v4";
+import * as z from "zod";
 
 export const AzureCustomCertificateConfigSchema = z.object({
     "keyVaultCertificateId": z.string()

package/src/generated/zod/azure-management-config-schema.ts

@@ -3,14 +3,16 @@
 * Do not edit manually.
 */
 
-import { z } from "zod/v4";
+import * as z from "zod";
 
 /**
  * @description Azure management configuration extracted from stack settings
  */
 export const AzureManagementConfigSchema = z.object({
-    "managementPrincipalId": z.string().describe("The principal ID of the service principal in the management account"),
-"managingTenantId": z.string().describe("The managing Azure Tenant ID for cross-tenant access")
+    "managementPrincipalId": z.string().describe("Management service principal object ID for local development fallback").nullish(),
+"managingTenantId": z.string().describe("The managing Azure Tenant ID for cross-tenant access"),
+"oidcIssuer": z.string().describe("OIDC issuer URL for federated identity credential creation").nullish(),
+"oidcSubject": z.string().describe("OIDC subject claim for federated identity credential creation").nullish()
     }).describe("Azure management configuration extracted from stack settings")
 
 export type AzureManagementConfig = z.infer<typeof AzureManagementConfigSchema>

package/src/generated/zod/azure-platform-permission-schema.ts

@@ -3,18 +3,18 @@
 * Do not edit manually.
 */
 
+import * as z from "zod";
 import { BindingConfigurationAzureBindingSpecSchema } from "./binding-configuration-azure-binding-spec-schema.js";
 import { PermissionGrantSchema } from "./permission-grant-schema.js";
-import { z } from "zod/v4";
 
 /**
  * @description Azure-specific platform permission configuration
  */
 export const AzurePlatformPermissionSchema = z.object({
-    get binding(){
+    get "binding"(){
                 return BindingConfigurationAzureBindingSpecSchema.describe("Generic binding configuration for permissions")
               },
-get grant(){
+get "grant"(){
                 return PermissionGrantSchema.describe("Grant permissions for a specific cloud platform")
               }
     }).describe("Azure-specific platform permission configuration")

package/src/generated/zod/base-resource-outputs-schema.ts

@@ -3,14 +3,14 @@
 * Do not edit manually.
 */
 
+import * as z from "zod";
 import { ResourceTypeSchema } from "./resource-type-schema.js";
-import { z } from "zod/v4";
 
 /**
  * @description Resource outputs that can hold output data for any resource type in the Alien system. All resource outputs share a common \'type\' field with additional type-specific output properties.
  */
 export const BaseResourceOutputsSchema = z.object({
-    get type(){
+    get "type"(){
                 return ResourceTypeSchema.describe("Resource type identifier that determines the specific kind of resource. This field is used for polymorphic deserialization and resource-specific behavior.")
               }
     }).catchall(z.any()).describe("Resource outputs that can hold output data for any resource type in the Alien system. All resource outputs share a common 'type' field with additional type-specific output properties.")

package/src/generated/zod/base-resource-schema.ts

@@ -3,15 +3,15 @@
 * Do not edit manually.
 */
 
+import * as z from "zod";
 import { ResourceTypeSchema } from "./resource-type-schema.js";
-import { z } from "zod/v4";
 
 /**
  * @description Resource that can hold any resource type in the Alien system. All resources share common \'type\' and \'id\' fields with additional type-specific properties.
  */
 export const BaseResourceSchema = z.object({
     "id": z.string().describe("The unique identifier for this specific resource instance. Must contain only alphanumeric characters, hyphens, and underscores ([A-Za-z0-9-_]). Maximum 64 characters."),
-get type(){
+get "type"(){
                 return ResourceTypeSchema.describe("Resource type identifier that determines the specific kind of resource. This field is used for polymorphic deserialization and resource-specific behavior.")
               }
     }).catchall(z.any()).describe("Resource that can hold any resource type in the Alien system. All resources share common 'type' and 'id' fields with additional type-specific properties.")

package/src/generated/zod/binding-configuration-aws-binding-spec-schema.ts

@@ -3,28 +3,28 @@
 * Do not edit manually.
 */
 
-import { z } from "zod/v4";
+import * as z from "zod";
 
 /**
  * @description Generic binding configuration for permissions
  */
 export const BindingConfigurationAwsBindingSpecSchema = z.object({
-    "resource": z.object({
+    "resource": z.optional(z.object({
     "condition": z.object({
     
     }).catchall(z.object({
     
-    }).catchall(z.string())).describe("Optional condition for additional filtering (rare)").optional().nullable(),
+    }).catchall(z.string())).describe("Optional condition for additional filtering (rare)").nullish(),
 "resources": z.array(z.string()).describe("Resource ARNs to bind to")
-    }).describe("AWS-specific binding specification").optional(),
-"stack": z.object({
+    }).describe("AWS-specific binding specification")),
+"stack": z.optional(z.object({
     "condition": z.object({
     
     }).catchall(z.object({
     
-    }).catchall(z.string())).describe("Optional condition for additional filtering (rare)").optional().nullable(),
+    }).catchall(z.string())).describe("Optional condition for additional filtering (rare)").nullish(),
 "resources": z.array(z.string()).describe("Resource ARNs to bind to")
-    }).describe("AWS-specific binding specification").optional()
+    }).describe("AWS-specific binding specification"))
     }).describe("Generic binding configuration for permissions")
 
 export type BindingConfigurationAwsBindingSpec = z.infer<typeof BindingConfigurationAwsBindingSpecSchema>

package/src/generated/zod/binding-configuration-azure-binding-spec-schema.ts

@@ -3,18 +3,18 @@
 * Do not edit manually.
 */
 
-import { z } from "zod/v4";
+import * as z from "zod";
 
 /**
  * @description Generic binding configuration for permissions
  */
 export const BindingConfigurationAzureBindingSpecSchema = z.object({
-    "resource": z.object({
+    "resource": z.optional(z.object({
     "scope": z.string().describe("Scope (subscription/resource group/resource level)")
-    }).describe("Azure-specific binding specification").optional(),
-"stack": z.object({
+    }).describe("Azure-specific binding specification")),
+"stack": z.optional(z.object({
     "scope": z.string().describe("Scope (subscription/resource group/resource level)")
-    }).describe("Azure-specific binding specification").optional()
+    }).describe("Azure-specific binding specification"))
     }).describe("Generic binding configuration for permissions")
 
 export type BindingConfigurationAzureBindingSpec = z.infer<typeof BindingConfigurationAzureBindingSpecSchema>

package/src/generated/zod/binding-configuration-gcp-binding-spec-schema.ts

@@ -3,25 +3,25 @@
 * Do not edit manually.
 */
 
+import * as z from "zod";
 import { GcpConditionSchema } from "./gcp-condition-schema.js";
-import { z } from "zod/v4";
 
 /**
  * @description Generic binding configuration for permissions
  */
 export const BindingConfigurationGcpBindingSpecSchema = z.object({
-    "resource": z.object({
-    get condition(){
+    "resource": z.optional(z.object({
+    get "condition"(){
                 return z.union([GcpConditionSchema, z.null()]).optional()
               },
 "scope": z.string().describe("Scope (project/resource level)")
-    }).describe("GCP-specific binding specification").optional(),
-"stack": z.object({
-    get condition(){
+    }).describe("GCP-specific binding specification")),
+"stack": z.optional(z.object({
+    get "condition"(){
                 return z.union([GcpConditionSchema, z.null()]).optional()
               },
 "scope": z.string().describe("Scope (project/resource level)")
-    }).describe("GCP-specific binding specification").optional()
+    }).describe("GCP-specific binding specification"))
     }).describe("Generic binding configuration for permissions")
 
 export type BindingConfigurationGcpBindingSpec = z.infer<typeof BindingConfigurationGcpBindingSpecSchema>

package/src/generated/zod/body-spec-schema.ts

@@ -3,8 +3,8 @@
 * Do not edit manually.
 */
 
+import * as z from "zod";
 import { PresignedRequestSchema } from "./presigned-request-schema.js";
-import { z } from "zod/v4";
 
 /**
  * @description Body specification supporting inline and storage modes
@@ -14,11 +14,11 @@ export const BodySpecSchema = z.union([z.object({
 "mode": z.enum(["inline"])
     }), z.object({
     "mode": z.enum(["storage"]),
-"size": z.int().min(0).describe("Size of the body in bytes").optional().nullable(),
-get storageGetRequest(){
+"size": z.int().min(0).describe("Size of the body in bytes").nullish(),
+get "storageGetRequest"(){
                 return z.union([PresignedRequestSchema, z.null()]).optional()
               },
-"storagePutUsed": z.boolean().describe("Indicates storage upload was used for response submission").optional().nullable()
+"storagePutUsed": z.boolean().describe("Indicates storage upload was used for response submission").nullish()
     })]).describe("Body specification supporting inline and storage modes")
 
 export type BodySpec = z.infer<typeof BodySpecSchema>

package/src/generated/zod/build-config-schema.ts

@@ -3,22 +3,22 @@
 * Do not edit manually.
 */
 
+import * as z from "zod";
 import { ComputeTypeSchema } from "./compute-type-schema.js";
 import { MonitoringConfigSchema } from "./monitoring-config-schema.js";
-import { z } from "zod/v4";
 
 /**
  * @description Configuration for starting a build.
  */
 export const BuildConfigSchema = z.object({
-    get computeType(){
+    get "computeType"(){
                 return ComputeTypeSchema.describe("Compute type for build resources.").optional()
               },
-"environment": z.object({
+"environment": z.optional(z.object({
     
-    }).catchall(z.string()).describe("Key-value pairs to set as environment variables for the build.").optional(),
+    }).catchall(z.string()).describe("Key-value pairs to set as environment variables for the build.")),
 "image": z.string().describe("Base container image to use for the build environment."),
-get monitoring(){
+get "monitoring"(){
                 return z.union([MonitoringConfigSchema, z.null()]).optional()
               },
 "script": z.string().describe("Bash script to execute for the build."),

package/src/generated/zod/build-outputs-schema.ts

@@ -3,7 +3,7 @@
 * Do not edit manually.
 */
 
-import { z } from "zod/v4";
+import * as z from "zod";
 
 /**
  * @description Outputs generated by a successfully provisioned Build.

package/src/generated/zod/build-schema.ts

@@ -3,22 +3,22 @@
 * Do not edit manually.
 */
 
+import * as z from "zod";
 import { ComputeTypeSchema } from "./compute-type-schema.js";
 import { ResourceRefSchema } from "./resource-ref-schema.js";
-import { z } from "zod/v4";
 
 /**
  * @description Represents a build resource that executes bash scripts to build code.\nBuilds are designed to be stateless and can be triggered on-demand to compile,\ntest, or package application code.
  */
 export const BuildSchema = z.object({
-    get computeType(){
+    get "computeType"(){
                 return ComputeTypeSchema.describe("Compute type for build resources.").optional()
               },
-"environment": z.object({
+"environment": z.optional(z.object({
     
-    }).catchall(z.string()).describe("Key-value pairs to set as environment variables for the build.").optional(),
+    }).catchall(z.string()).describe("Key-value pairs to set as environment variables for the build.")),
 "id": z.string().describe("Identifier for the build resource. Must contain only alphanumeric characters, hyphens, and underscores ([A-Za-z0-9-_]).\nMaximum 64 characters."),
-get links(){
+get "links"(){
                 return z.array(ResourceRefSchema.describe("New ResourceRef that works with any resource type.\nThis can eventually replace the enum-based ResourceRef for full extensibility.")).describe("List of resource references this build depends on.")
               },
 "permissions": z.string().describe("Permission profile name that defines the permissions granted to this build.\nThis references a profile defined in the stack's permission definitions.")

package/src/generated/zod/build-status-schema.ts

@@ -3,7 +3,7 @@
 * Do not edit manually.
 */
 
-import { z } from "zod/v4";
+import * as z from "zod";
 
 /**
  * @description Status of a build execution.

package/src/generated/zod/command-response-schema.ts

@@ -3,20 +3,20 @@
 * Do not edit manually.
 */
 
+import * as z from "zod";
 import { BodySpecSchema } from "./body-spec-schema.js";
-import { z } from "zod/v4";
 
 /**
  * @description Command response from deployment
  */
 export const CommandResponseSchema = z.union([z.object({
-    get response(){
+    get "response"(){
                 return BodySpecSchema.describe("Body specification supporting inline and storage modes")
               },
 "status": z.enum(["success"])
     }), z.object({
     "code": z.string().describe("Error code"),
-"details": z.string().describe("Optional additional details").optional().nullable(),
+"details": z.string().describe("Optional additional details").nullish(),
 "message": z.string().describe("Error message"),
 "status": z.enum(["error"])
     })]).describe("Command response from deployment")

package/src/generated/zod/command-state-schema.ts

@@ -3,11 +3,11 @@
 * Do not edit manually.
 */
 
-import { z } from "zod/v4";
+import * as z from "zod";
 
 /**
- * @description Command states in the ARC protocol lifecycle
+ * @description Command states in the Commands protocol lifecycle
  */
-export const CommandStateSchema = z.enum(["PENDING_UPLOAD", "PENDING", "DISPATCHED", "SUCCEEDED", "FAILED", "EXPIRED"]).describe("Command states in the ARC protocol lifecycle")
+export const CommandStateSchema = z.enum(["PENDING_UPLOAD", "PENDING", "DISPATCHED", "SUCCEEDED", "FAILED", "EXPIRED"]).describe("Command states in the Commands protocol lifecycle")
 
 export type CommandState = z.infer<typeof CommandStateSchema>

package/src/generated/zod/command-status-response-schema.ts

@@ -3,9 +3,9 @@
 * Do not edit manually.
 */
 
+import * as z from "zod";
 import { CommandResponseSchema } from "./command-response-schema.js";
 import { CommandStateSchema } from "./command-state-schema.js";
-import { z } from "zod/v4";
 
 /**
  * @description Response to status queries
@@ -13,11 +13,11 @@ import { z } from "zod/v4";
 export const CommandStatusResponseSchema = z.object({
     "attempt": z.int().min(0).describe("Current attempt number"),
 "commandId": z.string().describe("Command identifier"),
-get response(){
+get "response"(){
                 return z.union([CommandResponseSchema, z.null()]).optional()
               },
-get state(){
-                return CommandStateSchema.describe("Command states in the ARC protocol lifecycle")
+get "state"(){
+                return CommandStateSchema.describe("Command states in the Commands protocol lifecycle")
               }
     }).describe("Response to status queries")
 

package/src/generated/zod/compute-type-schema.ts

@@ -3,7 +3,7 @@
 * Do not edit manually.
 */
 
-import { z } from "zod/v4";
+import * as z from "zod";
 
 /**
  * @description Compute type for build resources.